$ rpki-client -vvf repo-rpki.idnic.net/repo/98035b12-6ca3-4fd2-b9b3-260d573e57c2/0/3130332e3137372e3235352e302f32342d3234203d3e20313439333238.roa File: 3130332e3137372e3235352e302f32342d3234203d3e20313439333238.roa (raw, json) Hash identifier: ew6FBh5cPjMaDtq6eoOfJ8yer7wJ+Y8LRfEbpfeqcdU= Subject key identifier: CB:56:54:71:55:9C:7A:AA:CD:01:6E:52:96:EB:1F:B6:DA:33:ED:13 Certificate issuer: /CN=0A874A4CB5F8A46DF4501B63FA5487F42800F93E Certificate serial: 0EAA28BF04D12253AE792922B9AD5DA7DED5885D Authority key identifier: 0A:87:4A:4C:B5:F8:A4:6D:F4:50:1B:63:FA:54:87:F4:28:00:F9:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A874A4CB5F8A46DF4501B63FA5487F42800F93E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/98035b12-6ca3-4fd2-b9b3-260d573e57c2/0/3130332e3137372e3235352e302f32342d3234203d3e20313439333238.roa Signing time: Thu 02 Oct 2025 16:00:01 +0000 ROA not before: Thu 02 Oct 2025 15:55:01 +0000 ROA not after: Thu 01 Oct 2026 16:00:01 +0000 asID: 149328 IP address blocks: 103.177.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/98035b12-6ca3-4fd2-b9b3-260d573e57c2/0/0A874A4CB5F8A46DF4501B63FA5487F42800F93E.crl rsync://repo-rpki.idnic.net/repo/98035b12-6ca3-4fd2-b9b3-260d573e57c2/0/0A874A4CB5F8A46DF4501B63FA5487F42800F93E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A874A4CB5F8A46DF4501B63FA5487F42800F93E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 13:16:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:aa:28:bf:04:d1:22:53:ae:79:29:22:b9:ad:5d:a7:de:d5:88:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A874A4CB5F8A46DF4501B63FA5487F42800F93E Validity Not Before: Oct 2 15:55:01 2025 GMT Not After : Oct 1 16:00:01 2026 GMT Subject: CN=CB565471559C7AAACD016E5296EB1FB6DA33ED13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ba:74:b3:5a:6c:0f:2b:4f:61:61:0c:bf:40: 27:bb:0c:17:20:79:13:44:3f:eb:53:2c:b1:cd:3e: a9:63:1f:8c:89:c8:67:71:92:54:ae:46:c4:7c:7b: a7:54:50:c5:e1:8a:c9:cd:e9:e8:39:80:6b:09:c8: 6a:6e:a4:5c:cc:ee:80:ba:de:6e:41:a6:c4:7c:89: ec:d5:2b:c6:e9:43:97:a6:35:30:10:f0:d8:5d:63: 53:15:39:de:a4:3c:06:d1:0e:e7:6a:7f:89:34:4c: 07:1d:de:ab:af:00:77:c5:4c:3b:ec:8c:09:c0:a5: ea:5e:7f:1f:4d:f3:8b:a3:43:4f:73:01:cb:5f:ac: 56:9f:e7:6b:8d:cb:3d:df:d2:5a:82:9f:74:20:ad: cf:0d:72:39:e1:7b:49:fb:f1:a1:60:cf:c5:b3:94: d1:4b:98:78:c8:db:b2:59:9c:50:a8:39:aa:32:37: 6b:bf:27:5a:3e:7b:e2:5d:ba:ed:7d:58:95:9c:40: ad:f3:c0:87:b7:fe:48:48:ed:1b:2e:31:12:12:72: bd:c6:6e:a7:7f:b3:36:06:b8:30:74:6e:da:49:cc: a5:55:0b:2c:81:0a:bc:46:2e:57:fb:67:e7:45:b8: 24:30:ed:22:9c:06:8f:fc:41:0d:0c:6e:77:0c:da: 63:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:56:54:71:55:9C:7A:AA:CD:01:6E:52:96:EB:1F:B6:DA:33:ED:13 X509v3 Authority Key Identifier: keyid:0A:87:4A:4C:B5:F8:A4:6D:F4:50:1B:63:FA:54:87:F4:28:00:F9:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/98035b12-6ca3-4fd2-b9b3-260d573e57c2/0/0A874A4CB5F8A46DF4501B63FA5487F42800F93E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A874A4CB5F8A46DF4501B63FA5487F42800F93E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/98035b12-6ca3-4fd2-b9b3-260d573e57c2/0/3130332e3137372e3235352e302f32342d3234203d3e20313439333238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.255.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:2c:94:51:57:f7:11:44:0c:5f:e7:ed:f9:a6:e2:5a:25:13: fb:fd:93:cc:f7:a3:60:f3:f0:4b:59:e3:9d:79:bd:2f:c9:28: 20:ad:33:0c:59:8a:12:ec:30:2e:a5:5a:c3:0d:f8:9b:c2:f4: d3:9d:46:26:1b:2d:5f:0d:73:58:cf:1e:d1:8b:4c:0a:78:53: 01:a4:f7:f9:46:3c:3c:0f:9c:b6:b8:63:8c:25:62:16:e0:2c: e6:0e:23:ac:04:46:ed:c3:0f:d3:5d:96:8f:f8:9e:ca:c4:16: 91:fb:05:57:a4:df:b6:a3:af:c7:55:b8:d2:0a:e4:72:61:2b: 44:53:ab:d8:b2:08:0c:a5:d8:5f:66:58:62:d8:f7:ce:97:53: 7c:6b:88:a9:69:4c:c4:41:d9:91:d2:b4:40:b7:42:5c:3c:52: ca:9b:54:ec:b8:1c:29:5d:bb:fb:62:fb:e0:9c:c5:da:00:e4: 54:1c:5f:cb:63:df:01:59:ba:e1:b9:c9:86:01:e4:f0:92:32: b6:02:9e:d7:4b:63:c9:5e:0f:d1:a7:ee:39:a3:d9:3d:a5:c4: c5:b7:57:7f:8d:f5:0c:82:92:c1:6a:81:8f:82:1b:75:b2:43: 92:4b:55:23:50:08:e8:4e:e3:85:4e:19:ec:9a:a2:73:d9:fe: 4b:00:21:95 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDqoovwTRIlOueSkiua1dp97ViF0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEE4NzRBNENCNUY4QTQ2REY0NTAxQjYzRkE1NDg3RjQy ODAwRjkzRTAeFw0yNTEwMDIxNTU1MDFaFw0yNjEwMDExNjAwMDFaMDMxMTAvBgNV BAMTKENCNTY1NDcxNTU5QzdBQUFDRDAxNkU1Mjk2RUIxRkI2REEzM0VEMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJunSzWmwPK09hYQy/QCe7DBcg eRNEP+tTLLHNPqljH4yJyGdxklSuRsR8e6dUUMXhisnN6eg5gGsJyGpupFzM7oC6 3m5BpsR8iezVK8bpQ5emNTAQ8NhdY1MVOd6kPAbRDudqf4k0TAcd3quvAHfFTDvs jAnApepefx9N84ujQ09zActfrFaf52uNyz3f0lqCn3Qgrc8Ncjnhe0n78aFgz8Wz lNFLmHjI27JZnFCoOaoyN2u/J1o+e+Jduu19WJWcQK3zwIe3/khI7RsuMRIScr3G bqd/szYGuDB0btpJzKVVCyyBCrxGLlf7Z+dFuCQw7SKcBo/8QQ0MbncM2mNvAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUy1ZUcVWceqrNAW5Slusfttoz7RMwHwYDVR0j BBgwFoAUCodKTLX4pG30UBtj+lSH9CgA+T4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ODAzNWIxMi02Y2EzLTRmZDItYjliMy0yNjBkNTczZTU3YzIvMC8wQTg3NEE0Q0I1 RjhBNDZERjQ1MDFCNjNGQTU0ODdGNDI4MDBGOTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEE4NzRBNENCNUY4QTQ2REY0NTAxQjYzRkE1NDg3RjQyODAw RjkzRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk4MDM1YjEyLTZjYTMtNGZkMi1i OWIzLTI2MGQ1NzNlNTdjMi8wLzMxMzAzMzJlMzEzNzM3MmUzMjM1MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzMzMyMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnsf8wDQYJ KoZIhvcNAQELBQADggEBAJsslFFX9xFEDF/n7fmm4lolE/v9k8z3o2Dz8EtZ4515 vS/JKCCtMwxZihLsMC6lWsMN+JvC9NOdRiYbLV8Nc1jPHtGLTAp4UwGk9/lGPDwP nLa4Y4wlYhbgLOYOI6wERu3DD9Ndlo/4nsrEFpH7BVek37ajr8dVuNIK5HJhK0RT q9iyCAyl2F9mWGLY986XU3xriKlpTMRB2ZHStEC3Qlw8UsqbVOy4HCldu/ti++Cc xdoA5FQcX8tj3wFZuuG5yYYB5PCSMrYCntdLY8leD9Gn7jmj2T2lxMW3V3+N9QyC ksFqgY+CG3WyQ5JLVSNQCOhO44VOGeyaonPZ/ksAIZU= -----END CERTIFICATE-----Generated at Mon Oct 20 14:20:38 2025 by rpki-client